Information Security Senior Specialist

We are seeking a highly skilled and experienced Information Security Senior Specialist to join our dynamic team in the real estate sector. This role is crucial in safeguarding our organization's information assets and ensuring compliance with industry standards and regulations. The ideal candidate will possess a deep understanding of information security concepts, risk management, and incident response. As a Senior Specialist, you will be responsible for developing, implementing, and maintaining our information security strategy, as well as collaborating with various departments to enhance our security posture.

1. Develop and implement comprehensive information security policies and procedures to protect sensitive data.
2. Conduct regular security assessments and audits to identify vulnerabilities and ensure compliance with regulatory requirements.
3. Lead incident response efforts, including investigation, analysis, and reporting of security breaches.
4. Collaborate with IT and other departments to integrate security measures into existing systems and processes.
5. Provide training and awareness programs for employees to promote a culture of security within the organization.
6. Stay updated on the latest security trends, threats, and technologies to proactively address potential risks.
7. Manage security tools and technologies, ensuring they are effectively deployed and monitored.
8. Prepare and present reports on security status, incidents, and improvements to senior management.
9. Work closely with external auditors and regulatory bodies to ensure compliance with industry standards.
10. Participate in security-related projects and initiatives to enhance overall organizational security.

1. Proven experience in information security, with a focus on risk management and incident response.
2. Strong analytical skills with the ability to assess complex security issues and develop effective solutions.
3. Excellent communication skills, both written and verbal, to effectively convey security concepts to diverse audiences.
4. Detail-oriented with a strong commitment to maintaining high standards of confidentiality and integrity.
5. Ability to work independently and as part of a team, managing multiple tasks and projects simultaneously.
6. Relevant certifications such as CISSP, CISM, or equivalent are highly desirable.
7. In-depth knowledge of security frameworks and compliance standards, including ISO 27001, NIST, and GDPR.
8. Experience with security tools and technologies, such as firewalls, intrusion detection systems, and encryption methods.
9. Proactive mindset with a strong focus on continuous improvement and learning.
10. Ability to adapt to a fast-paced environment and respond effectively to changing security needs.

• Risk Management: The ability to identify, assess, and mitigate risks to information systems and data, ensuring that appropriate controls are in place to protect against potential threats.
• Incident Response: Proficiency in managing security incidents, including detection, containment, eradication, and recovery, as well as conducting post-incident analysis to improve future responses.
• Security Audits: Experience in conducting thorough security audits and assessments to evaluate the effectiveness of security measures and identify areas for improvement.
• Compliance Knowledge: Familiarity with relevant laws, regulations, and industry standards that govern information security practices, ensuring that the organization meets compliance requirements.
• Technical Proficiency: Strong understanding of security technologies, including firewalls, intrusion detection/prevention systems, and encryption technologies, enabling effective deployment and management of security solutions.